Application Security Engineer II
Company: Pro Integrate
Location: Redmond
Posted on: May 8, 2024
Job Description:
Role: Application Security Engineer IILocation: Redmond, WA
Duration: 12 monthsMust: Ex. Microsoft employeeSomeone who came
from Development background For App Security client is also
accepting hardcore Dev (fullstack c#) + App security, Attached
sample resume for your reference. Application Security, Submit me
two Non MS guys, will push with client.They should be strong in C#
.Net backend development with Application security exp. Job
Description:
- Designing and implementing security strategies and policies
that meet an organization's specific needs.
- Conduct regular security assessments and penetration tests on
company products. Identify vulnerabilities and security gaps in
existing applications and propose remediation solutions.
- Lead the development and implementation of a comprehensive
vulnerability management program. This includes continuous
monitoring, analysis, and prioritization of vulnerabilities
discovered in applications.
- Implement and maintain security tools and processes to automate
the detection of security vulnerabilities. Integrate security tools
into the CI/CD pipeline. Security tools to be considered (not
limited to): Static code analysis (mainly Python and TypeScript);
dynamic code analysis and scanning for vulnerabilities using Burp
Suite and OWASP ZAP; software composition analysis.
- Work with the development team to ensure secure coding
practices are implemented. Provide training and guidance on
security best practices and emerging threats. Conduct threat
modeling, architecture reviews, and consult development teams when
making architecture decisions. Develop security requirements at the
early stages of the product life cycle.
- Participate in the response to security incidents, including
performing post-mortem analysis and recommending preventive
solutions.
- Ensure applications comply with industry standards and
regulations such as OWASP, GDPR, SOC 2, and ISO 27001.
- Collaborate with cross-functional teams to promote a culture of
security awareness. Communicate effectively with both technical and
non-technical stakeholders.Additional Job Description
- Understanding of architecture and working principles of modern
applications.
- Experience with Azure cloud security.
- Strong knowledge of security principles, techniques, and
protocols (e.g., OWASP Top 10, SSL/TLS, etc.).
- 5+ years of working experience as Application Security Engineer
or in a similar position (Penetration testing, Red Team, Bug Bounty
etc.).
- Strong knowledge of at least one scripting language (Python,
PowerShell, bash).
- Excellent problem-solving and communication skills.
Keywords: Pro Integrate, Shoreline , Application Security Engineer II, Engineering , Redmond, Washington
Didn't find what you're looking for? Search again!
Loading more jobs...